Vulnerabilities > Cryptographic Issues

DATE CVE VULNERABILITY TITLE RISK
2017-02-13 CVE-2016-9346 Cryptographic Issues vulnerability in Moxa products
An issue was discovered in Moxa MiiNePort E1 versions prior to 1.8, E2 versions prior to 1.4, and E3 versions prior to 1.1.
network
low complexity
moxa CWE-310
5.3
2017-01-13 CVE-2016-10139 Cryptographic Issues vulnerability in Adups Fota
An issue was discovered on BLU R1 HD devices with Shanghai Adups software.
local
low complexity
adups CWE-310
7.8
2017-01-13 CVE-2016-10138 Cryptographic Issues vulnerability in Adups Fota
An issue was discovered on BLU Advance 5.0 and BLU R1 HD devices with Shanghai Adups software.
local
low complexity
adups CWE-310
7.8
2017-01-13 CVE-2016-10137 Cryptographic Issues vulnerability in Adups Fota
An issue was discovered on BLU R1 HD devices with Shanghai Adups software.
local
low complexity
adups CWE-310
7.8
2017-01-13 CVE-2016-10136 Cryptographic Issues vulnerability in Adups Fota
An issue was discovered on BLU R1 HD devices with Shanghai Adups software.
local
low complexity
adups CWE-310
7.8
2017-01-02 CVE-2016-10099 Cryptographic Issues vulnerability in Borg Project Borg
Borg (aka BorgBackup) before 1.0.9 has a flaw in the cryptographic protocol used to authenticate the manifest (list of archives), potentially allowing an attacker to spoof the list of archives.
network
low complexity
borg-project CWE-310
5.3
2016-12-20 CVE-2016-7270 Cryptographic Issues vulnerability in Microsoft .Net Framework 4.6.2
The Data Provider for SQL Server in Microsoft .NET Framework 4.6.2 mishandles a developer-supplied key, which allows remote attackers to bypass the Always Encrypted protection mechanism and obtain sensitive cleartext information by leveraging key guessability, aka ".NET Information Disclosure Vulnerability."
network
low complexity
microsoft CWE-310
7.5
2016-12-14 CVE-2016-1411 Cryptographic Issues vulnerability in Cisco products
A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SMA) could allow an unauthenticated, remote attacker to impersonate the update server.
network
high complexity
cisco CWE-310
5.9
2016-12-13 CVE-2016-7439 Cryptographic Issues vulnerability in Wolfssl
The C software implementation of RSA in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences.
local
low complexity
wolfssl CWE-310
5.5
2016-12-13 CVE-2016-7438 Cryptographic Issues vulnerability in Wolfssl
The C software implementation of ECC in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences.
local
low complexity
wolfssl CWE-310
5.5